OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)
☆2,488Jun 16, 2020Updated 5 years ago
Alternatives and similar repositories for owasp-modsecurity-crs
Users that are interested in owasp-modsecurity-crs are comparing it to the libraries listed below
Sorting:
- ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-base…☆9,531Feb 22, 2026Updated last week
- ModSecurity v3 Nginx Connector☆1,812Feb 6, 2026Updated 3 weeks ago
- OWASP CRS (Official Repository)☆3,004Updated this week
- NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX☆4,825Nov 8, 2023Updated 2 years ago
- High-performance WAF built on the OpenResty stack☆1,312Jan 31, 2024Updated 2 years ago
- SQL / SQLI tokenizer parser analyzer☆1,026Oct 4, 2023Updated 2 years ago
- 适用于中小企业的云waf☆621Jan 22, 2018Updated 8 years ago
- Documentation for the OWASP CRS project☆41Aug 7, 2020Updated 5 years ago
- Web security protection system based on openresty☆772Mar 30, 2021Updated 4 years ago
- ngx_lua_waf是一个基于lua-nginx-module(openresty)的web应用防火墙☆4,028Mar 17, 2024Updated last year
- OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…☆5,019Feb 9, 2026Updated 3 weeks ago
- WAFNinja is a tool which contains two functions to attack Web Application Firewalls.☆822Dec 6, 2017Updated 8 years ago
- Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥☆7,375Aug 28, 2025Updated 6 months ago
- Source Code Security Audit (源代码安全审计)☆3,188Sep 16, 2022Updated 3 years ago
- 🔥Open source RASP solution☆2,953Oct 2, 2025Updated 5 months ago
- 被动式漏洞扫描系统☆872Nov 1, 2017Updated 8 years ago
- This project has stopped to maintenance, please to https://github.com/knownsec/pocsuite3 project.☆1,822May 27, 2022Updated 3 years ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆6,213Jan 27, 2026Updated last month
- 巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。☆3,598Apr 16, 2024Updated last year
- Framework for Testing WAFs (FTW!)☆266May 22, 2023Updated 2 years ago
- The ZAP by Checkmarx Core project☆14,826Updated this week
- lua waf,nginx+lua,openresty,luajit,waf+,cdn,nginx☆1,283Oct 10, 2021Updated 4 years ago
- Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management☆3,105Apr 16, 2021Updated 4 years ago
- w3af: web application attack and audit framework, the open source web vulnerability scanner.☆4,851Feb 22, 2023Updated 3 years ago
- JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool☆2,514Jan 21, 2020Updated 6 years ago
- Open Source Vulnerability Management Platform☆6,284Feb 13, 2026Updated 2 weeks ago
- Git All the Payloads! A collection of web attack payloads.☆3,908May 15, 2023Updated 2 years ago
- The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala proje…☆2,412Jun 17, 2025Updated 8 months ago
- JXWAF是一款基于AI大模型的Web应用防火墙☆1,199Feb 25, 2026Updated last week
- Attack Detection☆1,358Aug 31, 2022Updated 3 years ago
- Web application fuzzer☆6,430Jan 21, 2026Updated last month
- Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices☆12,049Feb 26, 2026Updated last week
- Web Application Security Scanner Framework☆4,010May 22, 2025Updated 9 months ago
- WAF-FLE, ModSecurity Console☆148Oct 1, 2022Updated 3 years ago
- This is a webshell open source project☆10,693Dec 24, 2024Updated last year
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,831Nov 10, 2023Updated 2 years ago
- Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and sys…☆15,339Jan 28, 2026Updated last month
- Penetration Testing Platform☆1,350Jul 6, 2022Updated 3 years ago
- Empire is a PowerShell and Python post-exploitation agent.☆7,818Jan 19, 2020Updated 6 years ago